Alarm for NSX IDS auto-update errors for airgapped sites

search cancel

Alarm for NSX IDS auto-update errors for airgapped sites

book

Article ID: 380093

calendar_today

Updated On:

Products

VMware vDefend Firewall with Advanced Threat Prevention

Issue/Introduction

Title: "IDS auto-update alarm for NSX Airgapped Sites "

Event ID:
idps_bundle_upload_from_gm_to_lm_auto_update_failure

Added in release: 9.0.0

Alarm Description

Purpose: This alarm indicates that the Global Manager could not upload the IDS Signature Bundle to mentioned airgapped site.
Impact: There may not necessarily be any visible impact. The alarms serve as a warning that the Global Manager could not upload the IDS Signature Bundle to mentioned airgapped sites.

Environment

VMware NSX

Resolution

Steps to resolve:

Following API can be used to get the detailed message for given site.
GET /global-manager/api/v1/global-infra/settings/firewall/security/intrusion-services/signatures/airgapped-auto-update-errors
Based on the detailed message for a site, corrective action can be taken.

Additional Information

For airgapped sites, the Global Manager uploads the IDS Signature Bundle to airgapped Local Manager. It may happen that for some
reason (e.g. LM is unreachable or down) the IDS Signature Bundle upload fails.

Feedback

thumb_up Yes

thumb_down No